Manager, Data Protection Office TH
Responsibilities:
- Provide governance, oversight, and consultation on personal data protection in compliance with Thailand’s PDPA.
- Monitor and review the collection, use, and disclosure of personal data of customers, employees, and vendors through Records of Processing Activities (RoPA) across business units.
- Develop, review, and conduct training on RoPA, Privacy Notices, PDPA documentation, policies, and procedures.
- Manage Data Subject Access Requests (DSAR) and coordinate responses with relevant stakeholders.
- Coordinate and report personal data breach incidents to senior management and regulatory authorities.
- Act as the primary liaison with the Personal Data Protection Commission (PDPC).
- Deliver annual PDPA Awareness Training for all departments across the bank.
- Prepare materials, facilitate discussions, and summarize monthly DPO meetings, covering:
- PDPA regulatory updates and subordinate legislation
- Data breach case studies and enforcement actions
- Best practices from financial institutions and PDPC consultations
Qualifications:
- Bachelor's in legal or Related
- Over 1-3 Years in Data Protection Office or legal
- Experience in Personal Data Protection Act e.g understand and able to provide consultative advice to business users, Policy and Procedure, Monitoring a compliance with the PDPA
- Experience in Customer Information, Personal Identifiable Information
- Experience in Confidentiality, Integrity and Availability Methodology
- Have can-do attitude and willing to learn new knowledge
- Able and willing to assume various multi-tasking work
- Good communication and negotiation skill